hak5/bashbunny-payloads
1
0
Fork 0
mirror of https://github.com/hak5/bashbunny-payloads.git synced 2025-10-29 16:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
bashbunny-payloads/payloads/library/credentials/ProcDumpBunny
History
0iphor13 4f57e587a1
Update payload.txt
2022-01-25 19:17:52 +01:00
..
payload.txt
Update payload.txt
2022-01-25 19:17:52 +01:00
README.md
Update README.md
2022-01-25 19:16:31 +01:00
Screenshot (37).png
Created ProcDumpBunny
2022-01-25 19:13:19 +01:00
Screenshot (38).png
Created ProcDumpBunny
2022-01-25 19:13:19 +01:00
Screenshot (39).png
Created ProcDumpBunny
2022-01-25 19:13:19 +01:00

README.md

Title: ProcDumpBunny

Author: 0iphor13

Version: 1.0

What is ProcDumpBunny?

It is simple - using a renamed version of procdump - you are able to dump hashes from lsass.exe

Instruction:

Download ProcDump from Microsoft - https://docs.microsoft.com/en-us/sysinternals/downloads/procdump - rename the Executeable to Bunny.exe alt text Place Bunny.exe in the same payload switch as your payload alt text

Plug in BashBunny. Exfiltrate the out.dmp file and read it with Mimikatz. alt text